hackaru-app/hackaru-api

# frozen_string_literal: true

module Auth
  class AuthTokensController < Auth::ApplicationController
    def create
      user = User.find_by(email: user_params[:email])
      singed_in = user&.authenticate(user_params[:password])
      return render_api_error_of :sign_in_failed unless singed_in

      store_auth_token(*AuthToken.issue!(user))
      render json: UserBlueprint.render(user, view: :auth)
    end

    def destroy
      revoke_auth_token
    end

    private

    def user_params
      params.require(:user).permit(
        :email,
        :password
      )
    end
  end
end